An SQL injection attack can consists of insertion of either a partial or complete SQL query via the data input or it can be transmitted from the client (browser) to the web application. A successful SQL injection attack can read sensitive data from the database. So, If you have a website you should do sql injection test to determine any kind of error.